Consensys Discovery Security Feature Issue Vulnerability

Consensys Discovery is an open source application from Consensys. A security vulnerability exists in versions of Consensys Discovery prior to 0.4.5 that stems from using the same AES/GCM random number throughout a session...

Discourse 跨站脚本漏洞

Discourse is an open source community discussion platform. The platform includes community, email, and chat room features. Discourse suffers from a security vulnerability that stems from the discovery of a CSP Content Security Policy random number reuse vulnerability that could allow cross-site...

ALEOS Random Number Reuse Vulnerability

ALEOS is an integrated development environment for building customized embedded M2M applications. A random number reuse vulnerability exists in the ACEView service in ALEOS versions prior to 4.13.0, 4.9.5, and 4.4.9, which can be exploited by an attacker to replay messages...

DEBIAN-CVE-2019-9898

Potential recycling of random numbers used in cryptography exists within PuTTY before 0.71...

PuTTY Random Number Reuse Vulnerability

PuTTY is a free implementation of SSH and Telnet for Windows and Unix platforms and an xterm terminal emulator. A random number reuse vulnerability exists in PuTTY versions prior to 0.71 used in cryptography. An attacker can exploit this vulnerability to potentially recycle random numbers used in...

Scientific Linux Security Update : bash on SL5.x i386/x86_64

Bash is the default shell for Scientific Linux. It was found that certain scripts bundled with the Bash documentation created temporary files in an insecure way. A malicious, local user could use this flaw to conduct a symbolic link attack, allowing them to overwrite the contents of arbitrary fil...